Connected car partnership aims for hacker-proof ECUs

Technology News | June 14, 2016

By Rich Pell

The resulting end-to-end solution protects against malicious attacks on the car’s Electronic Control Units (ECU) and secures communication among ECUs and the cloud; an AUTOSAR-compliant platform software is intended to assist OEM and Tier-1 application developers with time-to-market and standards-compliance.

The partnership is between STMicroelectronics, ETAS, provider of solutions for developing automotive embedded systems, and ESCRYPT, an ETAS subsidiary focused on security for embedded software; it will develop a complete platform comprising microcontrollers, software tools, and security solutions for automotive control units.

At the same time as the number of ECUs in a vehicle grows, cars are becoming connected to the cloud enabling over-the-air (OTA) software updates, remote diagnostics, and the forthcoming V2X communication. ST, ETAS and ESCRYPT aim to deliver a cost-effective platform for sub-system developers to create ECUs that ensure a high level of protection for vehicle-owners’ privacy, OEMs’ intellectual property, ECU functional integrity, and secure communication among the car’s ECUs and the cloud.

It will use the SPC58 series of power-efficient and real-time-capable automotive microcontrollers, which feature a built-in Hardware Security Module (HSM) as well as multiple state-of-the-art CAN FD interfaces, plus LIN, FlexRay, and Ethernet with time-stamping to implement both control units with a functional integrity check and an in-vehicle network with encrypted communication. This approach expands ST’s offering for connected-car defence, which also includes Secure Elements, or embedded SIMs (Subscriber Identity Modules), for protection against Internet-based attacks on ECUs and gateways that can steal personal data or compromise important vehicle systems.

“SPC58 automotive microcontrollers… have already been selected by a major Tier-1 supplier for a secure OTA (Over-The-Air) application that enables remote software fixes and upgrades without requiring customers to bring their vehicles to a repair garage,” ST commented.

ESCRYPT is contributing its expertise in secure ECU communication, including distribution of OTA software updates, and provides firmware and middleware for ECU developers to use the SPC58 HSM. Together, the HSM and ESCRYPT’s security technologies handle all the necessary authentication of trusted sources and prevention of access by unauthorized agents.

“We provide our product CycurHSM, the essential solution that exercises the HSM and our Key Management Solution to secure every aspect of the ECU’s activity, including secure boot-up, programming, and updates, as well as secure in-vehicle communication,” said Dr. Thomas Wollinger, Managing Director of ESCRYPT.

The solution builds on ETAS’ proven RTA software products that support ECU code development. RTA-BSW (Basic Software) consists of a full AUTOSAR solution including AUTOSAR R4-compliant basic software capable of supporting safety-critical ECUs for both passenger cars (ISO 26262) and off-highway (ISO 25119) domains. RTA-BSW is complemented by ISOLAR-A and ISOLAR-EVE tools for authoring and testing a full ECU software stack in a virtual environment.

STMicroelectronics: www.st.com
ETAS GmbH is a wholly-owned subsidiary of the Bosch Group: www.etas.com
ESCRYPT is a subsidiary of ETAS GmbH: www.escrypt.com